From f4175811cf5c3df292a97581251e0243d03b1278 Mon Sep 17 00:00:00 2001
From: badra001 <donald.e.badrak.ii@census.gov>
Date: Tue, 19 Jan 2021 14:59:16 -0500
Subject: [PATCH] add INC000002587282: tcp/4445 for EnCase

---
 it-windows-base/CHANGELOG.md | 5 ++++-
 it-windows-base/README.md    | 1 -
 it-windows-base/main.tf      | 2 +-
 it-windows-base/ports.tf     | 2 ++
 it-windows-base/version.tf   | 6 ++----
 5 files changed, 9 insertions(+), 7 deletions(-)

diff --git a/it-windows-base/CHANGELOG.md b/it-windows-base/CHANGELOG.md
index c849699..4ebdfc6 100644
--- a/it-windows-base/CHANGELOG.md
+++ b/it-windows-base/CHANGELOG.md
@@ -1,3 +1,6 @@
 # v1.0 -- 20200731
+  * create from running security group it-windows-base for use throughout
+
+# v1.1 -- 20210119
+  * add EnCase source 148.129.71.121 to 4445/tcp (ticket INC000002587282)
 
-* create from running security group it-windows-base for use throughout
diff --git a/it-windows-base/README.md b/it-windows-base/README.md
index c315a44..83fdc2b 100644
--- a/it-windows-base/README.md
+++ b/it-windows-base/README.md
@@ -34,7 +34,6 @@ module "it-windows-base" {
 
 | Name | Description | Type | Default | Required |
 |------|-------------|------|---------|:--------:|
-| \_module\_version | Module version number | `string` | `"1.0"` | no |
 | description | Security Group Description | `string` | `"Windows Common Base Security Group"` | no |
 | egress\_networks | List of egress networks (all ports) | `list(string)` | <pre>[<br>  "0.0.0.0/0"<br>]</pre> | no |
 | egress\_security\_groups | List of egress security groups (all ports) | `list(string)` | `[]` | no |
diff --git a/it-windows-base/main.tf b/it-windows-base/main.tf
index ee37c88..62c3f03 100644
--- a/it-windows-base/main.tf
+++ b/it-windows-base/main.tf
@@ -114,7 +114,7 @@ resource "aws_security_group" "this_security_group" {
   tags = merge(
     map("Name", "sg-${local.name}"),
     var.tags,
-    map("boc:tf_module_version", var._module_version),
+    map("boc:tf_module_version", local._module_version),
     map("boc:vpc:info", join(" ", compact(list(var.vpc_id, var.vpc_full_name)))),
   )
 }
diff --git a/it-windows-base/ports.tf b/it-windows-base/ports.tf
index b148f73..ff382b0 100644
--- a/it-windows-base/ports.tf
+++ b/it-windows-base/ports.tf
@@ -22,6 +22,7 @@ locals {
   n_mgmt        = ["148.129.162.0/24", "148.129.95.0/24"]
   n_backup      = ["10.193.0.0/22"]
   n_ansible     = ["172.24.12.239/32"]
+  n_encase      = ["148.129.71.121/32"]
   source_groups = ["all", "external"]
   name          = var.name
   ports = [
@@ -31,6 +32,7 @@ locals {
     [5201, 5201, "udp", "iperf3", local.n_all, ["external"]],
     [1556, 1556, "tcp", "Netbackup", local.n_backup, ["external"]],
     [3389, 3389, "tcp", "RDP", local.n_census, ["external"]],
+    [4445, 4445, "tcp", "EnCase", local.n_encase, ["external"]],
     [5986, 5986, "tcp", "WinRM-https", local.n_ansible, ["external"]],
   ]
 
diff --git a/it-windows-base/version.tf b/it-windows-base/version.tf
index 84fd21a..5190b69 100644
--- a/it-windows-base/version.tf
+++ b/it-windows-base/version.tf
@@ -1,5 +1,3 @@
-variable "_module_version" {
-  description = "Module version number"
-  type        = string
-  default     = "1.0"
+locals {
+  _module_version = "1.1"
 }